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(57) Abstract 

Method, apparatus, memory 
card, and system for establishing a 
secure connection between a wireless 
copimunication apparatus and a data 
communication apparatus based on 
a wireless ^plication protocol. The 
wireless communication apparatus 
is provided with contact means for 
receiving information from a separate 
unit provided with memory means. 
The memory means comprising 
information to control the access of 
the wireless communication apparatus 
through a wireless communication 
network connected to said data 
communication apparatus. 
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Secure session set up based on the Wireless Application Protocol. 

5 

Technical Field of the Invention 

The Wireless Application Protocol (WAP) defines an industry-wide 
specification for developing applications that operate over wireless 
cornmunication networks. The wireless market is growing very quickly, and 
10 reaching new customers and services. To enable operators and 
manufacturers to meet the challenges in advanced services, differentiation 
and fast/flexible service creation a set of protocols has been designed in 
transport, security, transaction, session and application layers. 

15 Background of the Invention 

WAP security functionality includes the Wireless Transport Layer Security 
(WAPWTLS) and application level security, accessible using Wireless Markup 
Language Script (WMLScript).. For optimum security, some parts of the 
security funcitionaHty 'need to »be/:performed by a tamper-resistant device, so 
20 'that an attacker' cannot retrieve sensitive xJata. Such data is especially the 
permanent private keyjs used in WTLS handshake with client authentication, 
. and for making application l^Vel electronic signiatures (such as confinming an 
-application level transaction); In WTLS, also, master keys (master secrets) are 
relatively longjivjipg - which* 6ould be several days -'this is in order to avoid 
25 ' ^frequent full handshakes which are quite heavy 'both?computationally and due 
to relatively large data * transfer. Master secrets are used as a source of 
. ' entropy, to calculate MAC keys and message encryption keys which are used 
to secure a limited number of messages, depending on usage of WTLS. 
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US-A-5,307,41 1 describe the set up of a secure communication session 
between two communication units, such as phones or^ facsimile machines. 
The secure session is controlled by separate smart cards b?ised verification 
unjts associated with a respective one of the communication units. These two 
5 verification units exchanges random number, encrypts these nynibers by 
. using private keys, returns the encrypted random numbers to their origin, 
^Then the. encrypted random number is. decrypted based on public keys. If the 
received numbers corresponds to the.transmltted numbers, the parties verifies 
each other an the secure sessipn may take place. However, this requires that 

10 both communication units are provided with a smart card reader, which is not 
a necessary requirement in a server, like e.g. an Internet server. Thus, this 
document is quite restricting for the user, since it requires that both parties 
have a smart card reader, and is less suitable for communication between a 
wireless communication .japparatus , and a data .communication apparatus. 

15 Also, every time a session i& . going .to be established between the two 
communication apparatuses, an exchange of keys must be done. 

Also, US-A-5,371,794, by .Sun Micrdsystem^^ way to providing a 

secure wireless communication, link between, a mobile nomadic device and a 

20 base computing unit. The mobile device sends a host certificate to the base 
along with a randomly chosen .challenge value (CHI.) and a list of supported 
shared key algorithms. The base sends random number (RN1) encrypted in 
the mobile's public key and an identifier for the chosen, algorithm back to the 
mobile. The base saves the RN1 value and adds the rCHI value and the 

25 chosen algorithm to the mobile. The mobile verifies under the public key of the 
base the signature, on. the message. .When the pMblic key, is verified, the 
mobile determines the yalue of RN1 by decrypting^ the public- key, under the 
private key of the mobile. The mobile then generates .RN2 and a. session key, 
and. encrypts RN:? under Jhfrpublic key. of the ..base to the base. The base 

30 verifies and decrypting the RN2, arid determines. the session k^y. ^jnally; the 
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mobile arid the biase can enter a data transfer phase using encrypted data 
which iS'decryptecl u^lng the session key which is RN1 + RN2. The values of 
RN1 and RN2 are always' derived from the last key exchange, which may be 
from the inKial cbnhectidri setup or from the last key change message, 
'5 whichever is'hfiore recent: This means that each time a data transfer is made, 
two new numbers is gfenerated based on RN1 and RN2, which will make the 

' data transfer 'tjUrt6 sloW: thus", as in US-A^5,30^411, every tim6 a session is 
^ goingto be established betWden the two apparatuses, ii4 this case the mobile 
nomadic devi^ef artel the base computing^unit. sih exchange of keys must be 

\0 done. " • * \ " ""^^ * • ' ' 

^ SummaH^^of fhb^lnvehtion * ' ^ >j Kio : , , ; p . - 

^ ^ The main btfject of the present mventipn i^to Wt^blish a 'secure borinection 

between a wirtetess^^rommiihicd^S^^ datia ttommunicati^ 

15 apparatus based'bn a wireless apfilid^tioh Vhbtbcb^ - 

Another object is to enable the user to re-establish a secure at a later 
bccasibn, sihc§ e^tabH^htng a secure coririe^ heavy procedure both 

computatiohany &ttd du&* to why, there is a 

20 heed to use th'e mutually' ^grd^d ma!ster sebtet for a relatively long time. The 
' problem is to store the' masteKkey Trt 'si&cU're way. Partly due to that problem, 
- it is bommbri practrce master sebret and the 

associated "secure- sfessib^ to' e.g.,' 24 Hobrs. afier whIcH it is required to 
perform the heavy key^establishmeri^^ 

The^ main object is achife>;'6d in accordance' with the present invention by 
- connecting a wireless cbmmuriicsifidri apparatus, e.g. a cellular phone, to a 
separate unit, e.g. a smart card; a SSlM (Subsiiriber Identity Module) card, etc., 
which- may store sensitive data of a sebiire^'connection: This means that the 
30 wireless cbmmunication apparatus having some kind of contact means, for 
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example wireless (e.g. infra-red, radio frequency, etc.) or physical (I.e. an 
electrical contact), for receiving infomnation from the Separate unit, i.e. the unit 
is provided with memory means. The memory means^ comprisies information 
to control an access of the wireless communication apparatus through a 
. 5-^ wireless communication network, e.g. a cellular phone network, connected to 
a data communication apparatus, e.g. a server, which supports a Wireless 
Application Protocol (WAP). 

One advantage of using a separate unit, when establishing a secure 
10 connection, is that it will be much easier to re-establish a connection to the 
data communication apparatus. Thus, It is possible to save information, e.g. 
signatures, secret keys, etc., in the memory means, and may be re-used in 
another secure connection. In order to avoid fraud, the re-use of a secure 
connection can be restricted for limited period of time. By saving this 
15 information in the memory means the second object will be achieved. 

Another advantage is that the user pays less when re-establishing a secure 
, session, in case of the necessary information to re-establishing is Saved. 

20 To establish a connection, ^the wireless communication apparatus connects to 
the separate unit, accessing the wireless ^ communication network connected 
to said data communication apparatus; Then the wireless cdhimunication 
apparatus transmits a request to the data communication apparatus. This 
request comprises information of Which pre-defin6d algbrithm(s) 'the wireless 

25 communication apparatus supports; When the data communication apparatus 
receives this request, it chooses at least one algorithm, associated with a 
public key and a private J<ey, and ^transmits a message back to the wireless 
communication apparatus. This message comprises the public key and 
information about which algorithm the data communication apparatus has 

30 chosen. When the wireless communieation apparatus^^^ the message. 
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cx>mprising the public , key. it ^ will generate a master secret code, and 
calculates a signature based on the chosen algorithnn, the public key and the 
master secret code. Thereafter, the wireless communication apparatus will 
transmit a respond .to the data communication apparatus. This respond 
comprises the calculated .signature. When the data communication apparatus 
receives the respond^ comprising the signature, it will calculate the master 
secret code based on the chosen algorithm, the signature received, and the 
private key. Finally, the data communication apparatus will be able to 
establish a secure connection to the wireless communication apparatus. 



F.urther advantages of the vane arrangement according to ^he- present 
Invention will be apparent Jrom.the>dependent claims. c r u;. 

Brief Description of the Drawing 



•Fig. 1 schematically- illustrates a preferred embodiment/ of a hand portable 
phone according to the invention. 

Fig. 2. schematically . ;j5hows the essential, parts of : a ..telephone for 
. ' communication with a cetlularor cordless Retwqrk. , v 



• Fig. ,3, schematically shows how the secure session is set up between a client 
25 . /phone and a server according to the iaventioo. 

Fig. 4 illustrates the message structure for setting up a secure connection 
according to the [invention. M ' r .? ^ 

3D , Detailed Description of Embodimei^ts - '~ j . ; 
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Fig, 1 shows , a preferred embodiment of a phone according to the invention, 
. , and it will be seen that the phone, which is generally designated by 1, 
comprises a user interface having a keypad 2, a display .3, an on/off button 4, 
a speaker 5, and a microphone 6. The phone 1 according to the preferred 
,5 embodiment is adapted for communication via. a cellular network, but could 
have been designed for a cordless network as well. The keypad 2 has a first 
group T of keys as alphanumeric keys, by means of which the user can enter 
a telephony number, write a text message (SMS), write a nanriie (associated 
with the phone nunriber), etc. Each of the twelve alphanumeric keys 7 is 
10 provided with a figure "0-9 ■ or a sign '?#".or "*", respectively. In alpha mode 
v. each key is associated" with a number of letters. and special signs used in text 
editing. ^ ^ . , 

The keypad 2 additionally comprises .two soft keys 8, two call handling keys 9, 
15 and a navigation key 10. : - ; ^: • r •■a - 

• j"'.'!!.; 'V"3- -J • ■ , . / 

The two soft keys 8 have a functionality: cdrresponding to what is known from 
the phones Nokia 21 101^, Nokia 8110™ and Nokia .38tO™. The functionality of 
the soft key depends on the state of the phone and the navigation -in the menu 
20 by using a navigation: key. The present fynctionallty of -the soft keys 8 is 
shown in separate fields in the display 3 just aboVe the keys 8. > 

The two call handling keys 9 aecordingrto the preferred embodiment are used 
for establishing a call on a: conference call, terminating a call or rejecting an 
25 incoming call. : , : . " 

The navigation key 10. is an up/down key and is placed centrally on the front 
surface of the phoner between the display ^3 and the group of alphanumeric 
keys 7. Hereby the user willfbe Sble to control this key with his thumb. This is 
30. the best site to place an input. key requiring precise motor movements. Many 
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experienced phone usere are used to one-hand handling. They place the 
- phone in the hand between the finger tips and the palm of the hand. Hereby 
the thumb is free for inputting Infomnation. 

5 Fig. .2 : schematically shoWs ' the most important parts of a preferred 
. ' embodiment of the phone, said parts-being essential to the understanding of 
/ the invention. The^ preferred embodiment of the phone of the invention is 
; adapted for use in connection withnhe GSM network? but^ of course, the 
: invention may also be applied in connection with other phone networks, such 
10 as cellular networks and various forms ot cordleSs phone systems or in dual 
, , band phones accessing -sets of thfese 'isysterifts/networks. The microphone 6 
records the user's speech, and the analog signals formed thereby are A/D 
converted in an A/D converter (not shown) before the speech is encoded in 
an audio part 14; The encoded speech signal is transfe'rred to the controller 
15 18, which i.a. supports the GSM terminal Software. The controller 18 also 
fonms the interface to the peripheral units of the apparatus. Including a RAM 
. . memory 1 7a and a FJash ROM menftory'^ITb; a SIM^card. 1 6, the display ^and 
: the keypad 2 (as wfelloas data, pbWfeV supply, : etc.). The controller 18 
: ^ :communicates. with :the ..transmi The audio part 14 

20 .^ speech-decodes the signlal, whrch is transferred frpm the controller 18 to the 
earpiece 5 via an D/Ajcohverter (not shown). - 

r The controller 18 is connected to the usfer .interface. Thus> it is the controller 
... ja which mpnitorss the. activity in the phone iand controls the display 3 in 
25 response thereto. 

Therefore; it is: the- controller t8 whrch^ detects the occurrence of a state 
change event and changes, the state of.the phone and thus the display text. A 
state change event may be caused by the^user when he activates the keypad 
:30 . including the navigation key 10; and this type of events is called entry events 
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or user events. However, the network communicating with the phone may 
also cause a state change event. This type of event and other events beyond 
the user's control are called non user events. Non user events comprise 
status change during call set-up. change in.; battery voltage, change in 
5 antenna conditions, message on reception of SMS, etc. 

An example of a tamper-resistant device is a sfmart card (SC). In the phone, it 
, can be the Subscriber Identity Module (SIM) or an external smart card. 

10 The way which a phone and a smart card Interact is specified as a command- 
response protocol. The goal of this protocol is to provide means for a WAP 
handset to utilize smart cards in performing WTLS and application level 
security functions. The functionality presented here is based on the 
requirement that , sensitive data, especially keys, can be stored in the card. 

15 and. air operations yvhere these key are involved can be performed in the-card. 
Different classes of the cards are introduced in order to define how widely the 
functionality is implemented. , , . . . ^ 

This specification is based on IS07816 series of standards on smart cards. In 
20 particular, it uses the ISp7816-:8: standard (draft) [IS07816-8]. When this 
functionality is applied to GSM SIM there nriay be a need, to extend also the 
related GSM specifications [GSM 1,1.1 1], where applicable^ 

According to the invention the smart card 16 is used^to enhance security of 
25 the implementation of the Security Layer and certain functions of the 
Application Layer. The smart c^rd 16 can be used for several purposes for 
WTLS. The major purpose of the . smart card 16 is to perfomri cryptographic 
operations during the handshake, especially when the handshake is used for 
client authentication. Furthermore the memory of the smart card 16 is used for 
30 securing a master secret, a public key and other type of confidential material 
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during long-living 'WTLS sessions. Finally thie memory of the smart card 16 is 
' used for recording the level security of the sessions. According to the 
invention the WTLS support' in a smart card 16 can be described with 
reference to the following three embodiments. 

First embodiment. 

According to this ernbodlment, the smart card 16 is used for storage of 
permanent, typically certified, private keys and for performing operations 
using these keys. The operations includ^sign^ (eg., ECDSA or 

10 RSA) for client authentication jWidT^^ selected handshake 

" ' scheme; key exchange operation using a fixdd client key (e-g.; ECDH key, in 

ECDH^ECPSA handshake). ^ 

The smart card 16 is not required to jDerform the calculatiori of the master 
15 secret or bperatiorts usihg the master key. These calculations may 
advantageously be performed by the' doritroller 1)3 of the phone. However, the 
smart card 16 may act as a persistent storage foY WTLS secure session (and 
connection) data, including master secrets. In this case, master secrets would 
•'^ be calculated and used for key derivation in the volatile phone memory (the 
20 RAM 17a) but erased from there when ho* needed at that nhoment, e.g., when 
the user exits from secure WAP apjilicatibns. Not storing session data 
persistently in- phone '1 /may inriprove Security, e.g., in the case of a stolen 
phone 1 . It also brings better usability in the case of changing the smart card 
16 from one phone 1 to another. ' ' 

, ; 25 : . . " ' . • ' ^" ' ^ ' 

' Additionally, for portability, the smart card t6 may store* needed certificates. 

Storage of trusted root certificateis (or public keys) has significance also from 
• * security point of view: they must not be altered - but they can be exposed 
' / without danger. • ' - . " 



wo 00/02358 



'C PGT/EP99/04720 



10 

Note that when public key encryption based key exchange (e.g.; RSA) is used 
according to the first enibodiment of the invefntidh, there is no advantage in 
doing public key encryption on the smart caixl 16 when the pre-master secret 
would anyway be returned to the phonet, for nnasteY secret calculation in the 
5 controller 18. • - ■ • - ' 

When client authentication is not supported in WTLS, at the minimum, the 
smart card 16 only acts as a storage for session data. If client authentication 
is supported, the card would be able to perform a signing operation based on 
10 a private key (e.g.,- EGDSA or RSA) stored in the dard, or key agreement 
calculation (e.g., ECDH) based on a fixed key stored in the card:' ' 

Second embodiment. * - ' • - 

According to the second embodiment, the smart card 16 is used as a tamper 
1 5 resistant device for all crypto-critical functionality: storage of all persisterit keys 
and operations using theise keys. Besides the operations performed according 
the first embodiment; the smart card 16 ho\A/ also supports'the 
calculation (ECDH key exchange) or generation (RSA key exchange) of the 
pre-master secret; calculation and storage of the master secret for each 
20 secure session; and disHvatidh arid output of key material (for MAC. 
encryption keys, IV, finished check), based bn this master'secret 

The phone 1 stores MAC and' miessage encryption keys as long as they are 
currently needed. These keys have a limited lifetime which may be negotiated 
25 during the WTLS haindshake in the extreme case they are used for a single 
message only. The phdne 1 has to delete the from its RAM memory 17a when 
the user exits from the secure WAP applications. These keys can always be 
derived anew from the master secret if needed. 
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An attacker who pfc)tains a message encryption key can read as many 
mjBSsages^as is agre,ed/in the key refresh configuration (in the extreme case, 
a single message). ^An attacker who obtains a MAC key can jmpersonate the 
.conpipromised party during as many messages as is agreed in the 
configuration (in the extreme case, a single message). 

Jhird embodiment^ - 

Certain specialized smart cards,,16 may act as >fu|l-blown security engines for 
WTLS., This rec^Jires that the smart card; 4& Js . e^^ its own 

. processing unit and only uses, the phone t as an interface to the cellular 
network during ; the secure session s^t,.up-j or the- hanjdshake procedure. 
Besides the operations according to the second embodiment, the smart card 
16 may store MAC and encryption keys for e$ich secure connection; and 
perfomri MAC calculation/verification jand enciyption/decryption of nriessages. 

Furthermore the smart card l&.may^ be ^ns^oF^sible for tha verification of 
certificates and 4^e yer^pation of 0^^^^^^ . 

Note that having^ messrage encryption in) Jhe sm card 16 . does not 
necessarily bring any ac<ditiorjaL secu^ty* in any case the data is as 

plain Jtext in the phone 1, The §ame ,is true for MAC calculation: the phone 1 
must be trusted to input and output data in a correct way. The only advantage 
hjere would be not haying to take encryption keys out of the card 16. However, 
the keys haye a limited lifetime r which is. negotiated during the WTLS 
handshake -Jn the extreme cas^ they are/used for single message only. 
According ;t0 : the third embodiment, the. smart card -16 will contain all 
algorithms so that they could be controlled by smart card issuers. 

Smartcard. 
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The term "smartcard" covers a card-like unit having some memory means in 
which some secret infomiation -identifying the card holder is stored. The 
memory means may be a magnet strip that may be read by a magnet reader, 
or it may be provided as discrete memory coFriporients ^is a ROM, EEPROM 
5 etc. When the user inserts the smart card in a more or less public apparatus 
he may become authorized to perforrh some operations sufch as banking 
operations. Presently the user of a GSM phone is'^d^ntified by a so-called 
Subscriber Identity Module or a SIM card 16, and the ^mctuire of this type of 
smart card is defined in the GSM specification "SpecificMtbh of the Subscriber 
10 Identity Module - McSbiite Equipnherft (SIM - ME) interface"; GSM 11.11 version 
5.5.0, published by Europ'ean Telecommunidatidns St;aridards Institute; ETSI. 
The present type of smsrtcards wlir be able to sUppoK the first embodiment 
explained abov6V ^ /^'j'^ > i - ^ - - 

15 Gemplus has recently launched a smartcard, GemiXpresso RAD, based on a 
32-bit chip frortl Tex^s- Instriiim^^ ARM7 RISC core technology. This 

32 bit RISC processor ha^g'^a 32 kbyte of hoVv veiatiie flash memory and 8 
kbyte of ROM. When the mechanical interface of the Gemplus card is adapted 
to fulfill the GSM specificatibh this type'bf smartcard wllf be able to support the 

20 second and the third efribbdirnent.* ^ ^^^-^^ 

Network. - •^^v/^^^v n ---^m .r-'-T . - , :^ 

Fig. 3 schematically shbws^hbw the secure session, i.e. a secure connection, 

between a data commuhibation apparatus ahd a Wireless communication 

25 apparatus, e.g; a ' 'cellufar -phone- 1.' "Basically the WAP content and 
applications are specified in a set of well-known content formats based on the 
familiar WWW content fbrmats. Content is transported using a set of standard 
communication protocols based "on the WWW comnriunication protocols. A 
browser in the phone 1 co-ordinates the user interface and is 

30 analogous to a standard web browser. 
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The wireless communication apparatus 1 . is a client 1 who wants to establish 
. a secure QonnectlGn, to-:a server 20,30,40, which is the data communication 
apparatus 20v20,30./Thef client is provided in an environment, which make it 
5 possible to reach a wide variety of different wireless platforms, e.g. world wide 

web (WWW). The environment provided may be referred to as Wireless - 
, ^pplicgtion Environrinent (WAE). This means that , the client 1 may be 
supported by some Jcir^jf^^cpvy^ e.g. a micro-browser, to access the 
i . , diffeiient services connected to the server. / In. order to access these services 
10 the browser may comprise following functiona^^^^^ . , . . 

Wireless Markup Language (WML),.- a lightweight marKup language, similar 
tp HTMLi^but optimised for use in hand-heldrmpbile terminals; 

• WMLScript - a lightweight scripting language, similar.tp JavaScript™; 

• Wireless Telephony Application (WTA, WTAI) - telephony services and 
15 . programmingJnterfacesy and . ^•: [ _ ; i ^ 

; ; Content Formats -.a set of welMefnedj data; formats, including images, 
, phone book records and calendar infonriati^ c 

The server.,20 Js -iising a wireless applipation^ protocol, and may comprise a 
20 gateway 30 and an origin server 40., Jha gateway 30 is also . a server, which 
may identify and encrypt/decrypt information between the client 1 and the 
origin server 40. This means that the gateway is provided with encoders and 
decoders > (not shown;).^AIso, the server i20 .comprise different algorithms to 
. make the. encryptior^^decryptipn, The, encryption/decryption itself may be 
. 25 performed by well-known methods, , e:g. RS A, Diffie-Hellman„ etc. The origin 
server ,4.0 comprises different scripts to support .WAP and data to be accessed 
by the client This data may be all kind of information, e.g. weather reports, 
news, information from stock markets, etc. - . / : 
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In order to access the server 20. from the clienf -1, the server has to be 
connected to a wireless communication network 50, e.g. a cellular phone 
network. Therefore, in accordance with the present invention, the client is 
provided with contact means (not shown) for receivihg infomiation from a 
5 separate unit (not shown) provided with memory means. This separate unit 
may be a smart card, subscriber identity module (SIM), or the like. The 
memory means may be a random access memory (RAM), read only memory 
(ROM), or the like. Further, the memory rheans comprises information to 
control the access of the server 20 through the wireless communication 
10 network 50. > ; - ; v: 

To establish a secure ranriection, the client 1 connects to the separate unit, 
accessing the wireliesis conimuhication network 50 connected to the server 20. 
Then the client 1 transmits in encrypted request 60 through the gateway 30. 

15 This encrypted request 60 comprises information of which pre-defined 
algorithm(s) the client 1 supports. When the gateway 30 receives this 
encrypted request 60, it sfends 70 the encrypted" request to the origin server 
40. The origin server 40 chooses at least one algorithm, associated with a 
public key and a private key, and transmits a "message 80 back to the 

20 gateway 30. The gateway encrypts the message and send it 90 to the client 1 . 
This message 90 compriises the public key and information about which 
algorithm the server 20 hais chosen. 'Wheh'thte client '1 receives the encrypted 
message 90, comprising the public key, it will generate! a master secret code, 
and calculates a signature baserf on the chosen algbrithrrt, the public key and 

25 the master secret code. Thereafter, the client 1 wfll transmit an encrypted 
respond 65 to the gateway 30. This encrypted respond 65 comprises the 
calculated signature. When the gateway 30 receives the encrypted respond 
80, comprising the signature, it will decrypt the respond 75 and send it to the 
origin server 40. The origin^server will calculate the master secret code based 

30 on the chosen algorithm, the signature received, and the private key. Finally, 
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the origin server- .40 sends a final message 85 to the; client through the 
gateyvay 30. If the origin server 40 has accepted the clients 1 request 60, the 
server wlllrbe able; to establish a secure connection between the origin server 
40.and the client 1 , else the connection will be tenninated. 

Setting up a secure connection. ^ 

Fig. 4 illustrates the message structure for setting up a secure connection 
according to the invention. 

10 The cryptographic' parameters of the secure session are prpduced by the 
WTLS Handshake Protocol, which operates on top of the WTLS Record 
Layer. When a V^TTLS client and server first ^st^ agree 
. on a protocol version, select crypjographip^algprithrns, pptionaily authenticate 
each other, and use public-key encryption techniques to generate a shared 

15; secret. , • - 

The WTLS Handshake Pro^ Transport Layer 

Security Specification dated- 30. April 1998 and is a part of the Wireless 
; Application Prptocol. ^ . : . 

The WTLS. Hc^idshake Prptqcpl involves fthe following sequence of steps. 
y,^' \Nhen the a WAP^sessipn has been set, between the phone 1 (the client) and 

the server 20 (e.g. a bai^k). and^the^cliefit (phorie t) wants to establish aj 

secure connection he sends a client hello niessage 1 00 as his first message. 
. ;25 This message iiincludes: a key exchange list that contains the cryptographic 
. key exchange algorithms supported by the client in decreasing order of 

preference. In addition, each entry defines ^the .jcertificate or public key the 
f client wishes to .use. The server will select orie.::or, if no acceptable choices 

are presented, return a - handshake_failure, alert and close the secure. 
: 30 . .connection, i; . ^ , . ^ : . - . 
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In response to the client hello message 100 the server 20 will send a server 
hello message 101 when it was able to fiod an .acceptable set of algorithms. If 
it cannot find such a match, it must respond with a handshake_^failure alert. 
5 The server hello message 101 will identify the session and set up the 
parameters need for the session. ^ 

The server 20 will furthermore transmit a server certificate message 102. The 
server certificate message 102 will always immediately follow the server hello 

10 message 101, and the purpose of this server certificate message 102 identify 
the cryptation algorithm selected, by the server from the key exchange list 

. Included in the client heHo. message 100. The server certificate message 102 
will include a so-called certificate , carrying a public key for the selected 
encryption algorithm. The server certificate message 1 02 includes information 

1 5 about issuer of the certificate, the beginning and the end of the validity period, 
and parameters relevant . pr , the public key. The server coritrols the validity 
period and when the grarited. validity peripd is expired the, client has to renew 
tlie secure connection. The length of the validity period will typicalty be in the 
level of a week or more. The maximum number of session will also have to be 

2Q defined. ... ^ : , 

# 

A Server Key Exchange Message 103 will be send as a third message 
immediately after the server certificate message 102. The server key 

25 exchange message 103 is optionally and will be sent by the server 20 only 
when the server certificate nriessage102 does not contain enough data to 
allow the client 1 to exchange a pre-master secret. This message 103 
conveys cryptographic information to allow the client to communicate the pre- 
master secret: either an RSA public key to encrypt a secret with, or Elliptic 

30 Curve Diffie-Hellman pararrieters with which the client can corriplete a key 
exchange (with the result being the pre-master secret). As additional Key 
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Exchange Suites are defined for WTLS which include new key exchange 
algbrithms, the server key exchange message will be sent if and only if the 
certificate type as^ocfated with the key exchange algorithm does hot provide 
enough information for the client to exchange a pre-master secret 

Also a forth message - a Server Certificate message 1 04 - is optionally. This 
message 104 requests a certificate from the client, if appropriate for the 
selected cipher suite. This message will immediately follow the Server 
Certificate message 102 and Server Key Exchange message 103. 

In order to inform the cfifent that the server Server Hello 

session,^ if -tonsniHV a 'Server Dorte^ Message t05. After sending this 
' message 105 the sefVer 20 will wait fbr a Slight response. This message 
" indicates that the server 20 has send' messages to suppott thei key exchange, 
1 5 and that the clfeht 20 can^rbcfeed wittV its phase of the key exchian^e. 

Upon receipt of the server hello dbne^nVessage'^^^^ shbuld verify that the 

' server provided a 'valid certificate* if required' ahd check that the server hello 
' parameters arB aece^sfble. " ' ' ' 

20 If the server 20 asks for an Client Certificate message 107, the client 1 Has to 
transmit such a after receiving a Server Hello Done message 105. This 
message is only sent if the server 20 requests a certificate. If no suitable 
certificate is available, the client nriust send a certificate message containing 
no certificates. If clierjt authentication is required by the server for the - 

25 handshake to continue, it may respond with a fatal handshake_failure alert. 
Client certificates are sent using the Certificate structure defined previously for 
server certificates. 

Now the phone 1 or the client starts to calculate a 20 byte random number to 
30 be used as a Master Secret 106 for the secure sessions. The master secret 
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106 is used to derive key material needed f for Message Authentication Code 
(MAC) keys and data encryption keys. MAC and data encryption provide data 
integrity and privacy between communicating parties. A public key based key 
establishment is a heavy procedure both computationally and due to intensive 
5 data transfer. That is why. there is a need to use the mutually agreed master 
secret 106 for a relatively long time. ' 

The processor or the controller 18 of the phone 1 calculates the master 
secret. A smart caftJ, e.g. the SIM card16, which can be regarded as a tamper 

10 resistant device, is used for storage of the sensitive data of the secure 
session, and performing operations using that sensitive data, so that this data 
never leaves the card. In practice the secure information will be transferred 
from the SIM card 16i to the working RAM 17a of the processor 18 but these 
information will be ovenvritten when no session is ongoing or when the phone 

15 1 is switched off. ' " 

According to the first embodlrifieht of the invention the controller 18 performs 
the operations needed for the key establishment, e.g., Diffie-Hellman 
calculation or RSA encryption and complementary calculations. Then the 

20 controller 1 8 jaersistenfly stores the resultinig secret key ([master secret 106) In 
the SIM card 16. Then the controller 18 performs the key derivation based on 
the master secret 106 and additional data (e.g., seed), producing key material 
for MAC calculation and encryption. The key derivation function is security 
protocol specific. If is typically based on sonrie secure hash function, e.g.. 

25 SHA-1. 

Preferably the SIM card 16; is provided as a smart card having its own 
processor; whereby both the operations needed "for performing the key 
establishment and the key derivation based on the master secret may be 
30 performed inside the smart card. Then the master secret, and data used to 
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calculate It, wouldi never have to leave smart card. So, the secure session 
V: associated with the master secret can be used during a long period 

A Client Key Exchange Message 108 will immediately follow the client 
5 certificate message 107, if it is sent. Otherwise it will be the first message sent 
by the client 1 after it receives the Server Hello Done message 1.05. With this 
message 108, a pre-master secret is set, either through direct transmission of 
the RSA-encrypted secret, or by the transmission of EC DifRe-Hellman public 
key which will allow each side to agree upon the same pre-master secret. 

10 ^ 

Then the Master Secret 106 is encrypted by. usirig the public key from the 
server's certificate and the agreed RSA algopthm. The result is send to the 
server 20 in an encrypted rnaster secret message 109. 

15 A Certificate Verify message 110 is used to provide explicit verification of a 
client certificate. This message is only sent by the client following a client 
certificate Message 107 that has signing capability (i.e., RSA certificates). 

Both ends has to send , finisheid messages 111. and 112 at the end of the 
20 handshake to verify that the key exchange and authentication processes were 
successful. 

The finished messages 111 and 1.12 is the first messages protected with the 
Just-negotiated algorithms, keys, arid secrets. Recipients of finished 
25 messages must verify that the contents are correct. Once a side has sent its 
Finished message and received and validated the Finished message from its 
peer, it may begin to send and receive application data 113 over the secure 
connection. It is a critical or fatal error if a finished message is not preceded 
by a change cipher spec message at the appropriate point in the handshake. 

30 
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The value hanclshake_nnessages includes all handshake messages starting at 
client hello up to, but not including, -this finished message. The 
handshake_messages for the finished message -sent by the client will be 
different from that for the finished message-sent by the server; because the 
5 one which is sent second will include the prior one. - ' 

As long as a secure connection is valid application data session 113 may be 
initiated just by using Client Hello messages 100 and Server Hello messages 
101. ^ ^ ^ ^ 

10 • ■ n • ' 
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CBC 


Cipher BIddk Chaining ' -''^ - 




DF 


Dedic^ed FiliB - ' v 




DH 


Diffie-Hellmarv^ ^ - - :^ - ; 




EC 


' Elliptic Curve ~ • 




ECC 


Elliptic Curve Cryptography 


20 


ECDH 


Elliptic Curve DifRe-Hellman 




ECDSA 


Elliptic Curve Digital Signature Algorithm 




EF 


Elementary File 




GSM 


Global System for Mobile Communication 




IV 


Initialization Vector 


25 


MAC 


Message Authentication Code 




ME 


Management Entity 




OSI 


Open System Interconnection 




PDU 


Protocol Data Unit 




PRF 


Pseudo-Random Function 


30 


SAP 


Service Access Point 
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SDU 


Owl viwo iw/aid Willi 


SHA-1 


Sgcutp Hji^h AInnrithm 

wwwuiv^ J icioi 1 rAiUwi iLi II 1 1 


-SIM ' 


StiH^crih^r IHpntitx/ MoHiiIp 

wUL^OV^I ll^wl J|JC7I iLliy IViwULIIC? 


SMS 


Short Mp<%Qnnp ^prvif^p 


SSL 

www 


^PCI irp -^or^W^tc 1 awor ^ 




"T*r3ncr\r^rf 1 o\/or ^of^i irit\/ 


WAP 


; vviroi6o9 Mppiicaiion trroiocol . 


WML 

V V IVI w 




WMLScnpt 


Wireless Markup LanguageScript 


WDP 


Wireless Datagram Protocol 


WSP 


Wireless Session Protocol 


WTLS 


Wireless Transport Layer Security; 


WTP 


Wireless Transaction Protocol , - . / . 



15 The list above includes the acrpnynjs, used, in the .present text. Detailed 
discussion and explanation of the acronyrns; ;niay be found in the technical 
specifications defining the Wireless Application Protocol on the Internet 
homepage for WAPFORUM. i: http://www.wapforum.org/. 
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CLAIMS : : ^ 

1 . Method for establishing a secure connection between a wireless 
communication apparatus and a data communication apparatus based on 
a wireless application protocol, wherein said wireless communication 
apparatus having contact means for receiving information from a separate 
unit . provided with memory means, said memory means comprising 
information to control the access of the wireless commilinication apparatus 
through a wireless communication network connected to said data 
communication apparatus, comprising the following steps: 

- connecting said wireless communication, apparatus to the separate 
unit, accessing the wireless communication network connected to said 
data communication apparatus 

- the wireless communication apparatus transmits a request to the data 
communication"^ apparatus to establish a cohnectibn, said request 
comprising information. of which pre-defined -&lgorithm(s) the wireless 
communication: apparatus supports,^ . - , ^ 

- upon reception of said request,: the: data communication apparatus 
choose at least one , algorithm, associated with a public key and a 
private key, and transmits ' a message barck to the wireless 
communication apparatus, sraid niessage comprising the public key 
and information about which algdrithTn the data communication 
apparatus has chosen, 

- upon reception rof the message, comprising the jsublic key. the wireless 
communication apparatus generates a master secret code, and 
calculates a signature based on the chosen algorithm, the public key 
and the master secret code, and transmits a respond to the data 
communication apparatus, said respond comprising the calculated 
signature.: J : ; j ? v \ . 1 V 
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- upon reception of the respond comprising the signature, the data 
communication apparatus calculates the master secret code based on 
the chosen algorithm, the signature received and the private key. and 

: establish a secure connection to the wireless communication 
5 , . ^ apparatus; and ! - ^ 7 . 

- ,saving said master secret code on said rnemory means and in the data 
, communication apparatus; in- order to te-estabHsh the connection at a 

-later occasion. ^ - \ ' ' 

10 2. A metlaad according to claim 1, and^-eomprising a istep of saving said 
: master secret under a pre^iefined time. V : ^; on . 

3. A method according to claim 1 , or 2;:.andi comprising a step of re- 
, establishing the connection by - jr .i^; ^fT^^ 
15 - transmitting a request fronrvithe^icejess contimunication apparatus to 

- ,the data: communication apparatus; : said ^irequest comprising' the 
calculated signature.based X)n theiphosen algorithm, the public key and 
the stored secret key^; and r i / :^ ti^ j 

- . upon reception .of :the , request, .:^the data communication apparatus 
20 calculates the master secret code based on the chosen algorithnn, the 

signature r^BcMvedr. arid the: private .key, and, establish a secure 
, ; cpnnection to the wireless coRMWUiaication ap 

, 4. A method according to daimtl, 2,^r?,3, and comprising a step of providing 
25 - i. ^ . said memory means in a smart card: nr - ^ 

5. Wireless communication apparatus for establishing a secure connection to 
a data communication apparatus based on a wireless application protocol, 
said wireless communication apparatus comprising: - ^ - 



wo 00/02358 



^ : I r ■ ^eT7EP99/04720 



24 

- communication means for establishing a connection to a wireless 
communication network connected to said data communication 
apparatus, 

- contact means for receiving information from a separate unit provided 
5 with memory means, said memory means is p^rovided with Information 

to control the access of the data communication appikratus through the 
wireless communication network, 

- reading means for reading information received from the data 
communicatron apparatus and the information provided on said 

10 memory means, ^ — ; ^ 

- random generating m^ans, for generating a master secret code, 

- pre-defined algorithm(s), to generate a signature based on said master 
secret code and a public key received from said data communication 

^ apparatus, whic:h is to be used when the wireless conimunication 

15 apparatus is going tb establish a secure bbnriectioh to the data 

' communication apparatus, and 

- said reading mfeans comprising a siBcure databas provided with at 
least one master secret code and/or at least one signature related to 
one or mbre data cbmhnunication apparatus, 'in order to re-establish a 

20 secure connection to a data communication apparatus. ^ 

6. A wireless communication apparatus' iaccording to claim 5, having its 
memory means exchangeable. 

25 7. An apparatus according to claim 5 or 6, said memory rheans is a smart 
card. - ' ^' ' ■ • -v;: ,^ ■ • ■ . . * • 

8. An apparatus according to claim 5, 6, or 7, said memory means is a 
subscriber idehtity'^module: : - : 

30 - " 
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9. Memory card for, establishing a secure connection between a wireless 
. cpmmunication apparatus and a data communication apparatus based on 

a wireless application protocol, an-anged to be connected to said wireless 
communipation apparatus haying contact means for receiving information 
^ from the memory card, and .said menriory card is provided with infonmation 
to control, the access of the data communication apparatus through a 
wireless communication network, * 

. • ■ - " * * * * - . ; - 

10. A memory. card according to claim 9, further^pqmprising encryption means 
for encrypting the master secret, which is tp bei used as a signature for the 
\yireless communication . apparatus ^Aff^er> . jt is establishing a secure 
connection., , , ^rM 

11. A memory card according to clfHm.9 or ,10, comprising a secure database 
provided^wjth at; least one iT>aste| secret cqde and/or at least one signature 
related to one or more data cpmmunication ^apparatus, in order to re- 

, estabjish a secure connection to a^atapprnmunication apparatus 

12. A memory, -card Recording to qtairn 9, 10, or, 11, -is provided on a smart 
card. , . . . 

13. 3ystem for j9stablishing a secui:e..connection when using a wireless 
application protocol, comprising: \ ^ > 

- a data communication apparatus based on the wireless application 
protocol, . . . _ . . . . r 

- a wireless communication network, connected to said data 
communication apparatus, 

- a wireless communication appar;atus-.. having- contact means for 
receiving infomiation from a separatjB unit .provided with, memory 
means, and 
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- the separate unit provided with the memory means, said memory 
means, comprising information to control the access of the wireless 
communication apparatus through the wireless communication 

. network, wherein 

5 - the wireless communication apparatus is arranged to transmit a 
request to the data communication apparatus to establish a 
connection, said request comprising information of which pre-defined 
algorithm(s) the wireless communication apparatus supports, 

- upon reception of said request, the data communication apparatus is 
10 arranged to choose at least one algorithm, associated with a public key 

and a private key, and to transmit a message back to the wireless 
communication apparatus, said message comprising the public key 
and information about which algorithm the data communication 
apparatus will choose, 

15 - upon reception of said message, comprising the public key, the 
wireless communication apparatus is arranged to generate a master 
secret code, to calculate a signature based on the chosen algorithm, 
the public key and the master secret code, and to transmit a respond to 
the data communication apparatus, said respond comprising the 

20 calculated signature, 

- upon reception of the respond comprising the signature, the data 
communication apparatus is an^anged to calculate the master secret 
code based on the chosen algorithm, the signature received, and the 
private key, and, thus establish a secure connection to the wireless 

25 communication apparatus, and 

- said memory means and the data communication apparatus are 
arranged to save said master secret code, in order to re-establish the 
connection at a later occasion. 
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14: A system* according to claim 13, said master secret is arranged to be 
saved under a pre-defined time. 

15, A system according to claim 13, or 14, said memory means is a smart 
5 ^ card. * 
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